Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
azeemba
8 months ago
|
parent
|
context
|
favorite
| on:
CVE-2024-4367 – Arbitrary JavaScript execution in ...
The problem here was neither media extensions nor embedded JavaScript though.
It was pdf.js handling of fonts
agumonkey
8 months ago
|
next
[–]
That said, a smaller spec may help people focus on more solid code. Potentially.
bee_rider
8 months ago
|
prev
[–]
PDF/A requires fonts to be embedded rather than linked, would that have saved the day?
jl6
8 months ago
|
parent
[–]
No, /FontMatrix is part of a metadata object which can be present whether the font is embedded or external.
Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
It was pdf.js handling of fonts